Skip to content

add proxy to show image/vedio out of the webserver root directory #1274

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 7 commits into
base: master
Choose a base branch
from
Open

add proxy to show image/vedio out of the webserver root directory #1274

wants to merge 7 commits into from

Conversation

@imcraftsman
Copy link
Contributor

@imcraftsman imcraftsman commented Jan 22, 2025

when we login as an ordinary client, our folders which assigned by the administrator are usually not in the webserver root directory. so, we could not get the file's hyperlink, and we could not preview pictures and appreciate video online.
but,now,the problem is solved when a proxy is added in tinyfilemanager.php.
modified items list:

  1. add a proxy;
  2. modify image's/video's hyperlinks
  3. modify file's 'direct link' related with open button.

in addition:
There is a clerical error in lin "$fileTypes['jfif'] = 'image/jpg';" it should be "$fileTypes['jfif'] = 'image/jfif';"
in my another PR(PR id= #1269)

@imcraftsman
Update tinyfilemanager.php
e870873 
running envirement: Android 4.4+PHP 7.4.3+ KSWEB
http://192.168.1.2/tinyfilemanager.php, afer login,the main page could not be showed entirely,it just shows half of navigation bar.

that's becuase of
there are two same lines of codes which cause the problem. they are
$owner = posix_getpwuid(fileowner($path . '/' . $f));
when the funciton fileowner($path . '/' . $f)  return 0 and  run the function posix_getpwuid(....), it trig an error.
please check the codes in line 2156--2168 and 2221--2233

suggest replace these two parts with followed  codes:
                $owner = array('name' => '?');
                $group = array('name' => '?');
                if (function_exists('posix_getpwuid') && function_exists('posix_getgrgid')) {
                    try{
                        $owner_id = fileowner($path . '/' . $f);
                        if($owner_id != 0) {
                            $owner_info = posix_getpwuid($owner_id);
                           if ($owner_info) {
                                  $owner =  $owner_info;
                           }
                       }

                        $group_id = filegroup($path . '/' . $f);
                        $group_info = posix_getgrgid($group_id);
                        if ($group_info) {
                             $group =  $group_info;
                         }

                    } catch(Exception $e){
                       error_log("exception:" . $e->getMessage());
                    }
                }
@imcraftsman
add proxy to show image/vedio out of the webserver root directory
f4f7a22 
add proxy to show image/vedio out of the webserver root directory

when we login as an ordinary client, our folders which assigned by the administrator are usually not in the webserver root directory. so, we could not get the file's hyperlink, and we could not preview our pictures and watch our video online.
now, the problem is solved. I add a proxy to settle this.
modified list:
1) add a proxy;
2) modify  image's/video's  hyperlinks
3) modify file's 'direct link' related with open button.

in addition:
There is a clerical error in lin "$fileTypes['jfif'] = 'image/jpg';" it should be "$fileTypes['jfif'] = 'image/jfif';"
in  my another PR(PR id= prasathmani#1269)
@imcraftsman imcraftsman mentioned this pull request Jan 22, 2025
Closed
@imcraftsman
Update tinyfilemanager.php
ae8abd6 
simplify the method of calling  proxy
@imcraftsman imcraftsman mentioned this pull request Jan 23, 2025
Open
@imcraftsman
Copy link
Contributor Author

imcraftsman commented Jan 23, 2025

this PR relate to these issues:
Preview images and direct links not working for user specific directories #724
#724
Cannot play mp3 #1146
#1146
File preview and opening not working. #1247
#1247

@imcraftsman
Update tinyfilemanager.php
cbf7616 
0)update from https://github.com/prasathmani/tinyfilemanager
1) modify proxy, add some codes to adapt  isset($_SERVER['HTTP_RANGE'])
2)add new function ---  album.
@imcraftsman
Update tinyfilemanager.php
82d36f2 
1) Support all paths on the OpenWrt system.
2) Send video stream with segment-by-segment
3) Reduce the creating-thumbnail function parameters
4) Change the method of creating thumbnails 
5) Add some debugging code
@imcraftsman
Enhance security and IP handling in tinyfilemanager
9698589 
Added support for trusting proxy IP headers, improved client IP retrieval, and enhanced path sanitization to prevent security issues. Updated HTML generation to escape directory and file names to prevent XSS attacks.

Need to add globlal a new paramater   into config.php file
// **新增:是否信任反向代理的 IP 头 (例如 Cloudflare 或 Nginx)**
// false (默认/最安全):只使用 REMOTE_ADDR,防止 IP 伪造。
// true (使用代理时):允许读取 HTTP_X_FORWARDED_FOR 等头,获取真实客户端 IP。
$trust_proxy = false;
@imcraftsman
add config.php and favicon.ico
7f33c11 
add config.php and favicon.ico
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@imcraftsman